1 FULLY SECURE MESSAGE TRANSMISSION OVER NON-SECURE CHANNELS 

2 WITHOUT CRYPTOGRAPHIC KEY EXCHANGE 

3 ' • . '• ■ • - 

4 ' 

5 BACKGROUND OF THE INVENTION 

6 . 

7 1. Field of the Invention 

8 ■ ." .'- 

9 The present invention relates generally to cryptography and, more particularly, to the 

1 0 secure transmission of messages between parties using non-secure communication 

11 channels. 

12 . . ... 

13 2. Description of the Prior Art 

14 . \ ■ ■ / , . \ ■ ■' : " 

15 Cryptographic systems are widely used to ensure the privacy of messages communicated 

1 6 over insecure channels. Such systems prevent the extraction of information by 

1 7 unauthorized parties from messages transmitted over insecure channels, thus assuring the 

1 8 sender that a transmitted message is being read only by the intended recipient. 

19 ' " ' : .. . • ' ' ' . 

20 Two distinct classes of cryptographic methods and protocols are widely used, symmetric- 

21 key cryptography and public-key cryptography. In symmetric-key techniques, the same 

22 key and cryptographic method are used by both the encoding party for sending the 

23 message and by the receiving party for decoding the message. The security of 

24 symmetric-key protocols is based on the secrecy of the required key and the strength of 

25 the cryptographic method. The message can be properly decoded by the receiving party 

26 only if the transmitting party and the receiving party possess the identical key used for 

27 encoding the message. 

28 ; 

29 For conventional public-key key techniques such as those pioneered by Diffie and 

30 Hellman, there are two keys, a public key to which anyone can gain access and with 

3 1 which a plaintext message is encrypted, and a private key that only the recipient 

32 possesses and with which the encrypted message is decrypted. The security of public key 

33 protocols relies on the considerable difficulty of determining the private key by analyzing 

34 the public key. Such computational difficulty is essentially inherent in most public key 

35 processes making them considerably slower than symmetric-key protocols even for the 

36 recipient who possesses the private key. Chang has devised protocols for the exchange 

37 (or simultaneous creation) of cryptographic keys similar to the broadcast- and-response 

38 processes of public-key techniques. These key exchange techniques appear to be fully 

39 secure but simply create cryptographic keys for subsequent use by other cryptographic 

40 systems; they do not allow for the direct transmission of agent-created messages. 
41 

42 Mechanical systems exist which are analogous to symmetric-key and public-key systems. 

43 For the symmetrical-key process, the mechanical analogy is a locked box carried between 

44 the two parties where each party has previously obtained a copy of the key that opens the 

45 box. The first, transmitting party unlocks and opens the box, places the message inside, 

46 relocks the box and sends it to the second, receiving party who then unlocks the box arid 



1 removes the message. The public-key process resembles an unlocked box and open lock 

2 with a special locking-only key left in a public place. The locking-only key is available 

3 for public inspection and analysis. Any interested, transmitting party may place a 

4 message in the box, close the lock, and secure the lock with the locking-only key; only 

5 the box's recipient owner will be able to unlock the lock with a different unlocking-only 

6 key, open the box, and remove the message. 

• 7 ; . ; .;• . ' ; ■' 

8 A third mechanical analogy demonstrates the processes of the claimed invention. In it, a 

9 first party places a message in a box, locks it, and sends it to the intended recipient. The 

1 0 recipient places a second lock on the box and returns it to the original sender. The first 

1 1 party then removes the first lock from the doubly locked box and sends the still singly 

12 locked box to the intended recipient a final time. The recipient then removes the second 

13 lock, opens the box, and retrieves the message. This is the essence of the so-called three- 

14 pass protocol. Neither party shares a key to the box, differentiating this process from the 

1 5 symmetric-key process, and the keys to the box are never available for public inspection 

1 6 and analysis, differentiating this process from the public-key processes. This three-pass 

17 protocol as utilized in the claimed invention represents a third distinct class of encryption 

1 8 techniques that could best be described as independent-key processes, since neither party 

19 possesses nor shares a key with the other party. 

20 " . ■ : ' - \ \ 

21 In the context of modern cryptography, Schneier describes the three-pass process as a 

22 public-key system and attributes the protocol to Shamir. A primary limitation of the 

23 three-pass protocol has been the ability of an eavesdropping third party to use the three 

24 transmitted encrypted messages to "crack the code" and derive the original plaintext 

25 message, Schneier demonstrates that even otherwise secure symmetric key protocols 

26 * such as one-time pads are not secure in a three-pass process. Shamir (concurrently with 

27 Omura) devised an encryption algorithm for the three-pass protocol using an RSA-like 

28 factoring algorithm as the key mechanism. Others have used the three-pass protocol as 

29 well; for example, Massey devised a key mechanism based on GF(2 m ) finite fields. Both 

30 implementations use key processes that are computationally difficult - like conventional 

3 1 public-key methods - but not fully secure. 

32 . 

33 The claimed invention uses the three-pass protocol and creates cryptographic processes 

34 that are fully secure while requiring no cryptographic key exchange. The processes of 

35 the invention are differentiated from the previous, public-key- like, three-pass protocols. 

36 The technique of the invention is designated as an independent-key process. 
37 

38 ; ■ ■" 

39 SUMMARY AND OBJECTS OF THE INVENTION 
40 

41 One object of the invention is to provide a fully secure cryptographic technique for 

42 maintaining privacy of messages conveyed or transmitted over non-secure channels while 

43 requiring no exchange of any cryptographic keys, either public or private. 

44 ^ . 



1 Accordingly, it is another object of this invention to allow two parties to the 

2 communication of a message to exchange the message privately even though another 

3 party (an eavesdropper) intercepts all of their communications. 

- 4 " ' - ' . ; ' - 1 ■: ■ ;. ' " ■ ■ 

5 Another object of this invention is to provide for the fully secure exchange of messages - 

6 including cryptographic keys - between two parties even when the communication is 

7 transmitted over non-secure channels. 

8 \ ; _^ ■ . : • . 

9 Another object of this invention is to provide for a message exchange protocol that is 
10 fully secure against all but a brute force cryptanalysis attack.; 

■ u - - • - * -.. ; • " • : ' 

12. Another object of this invention is to provide for a fully secure message exchange 

13 protocol that is faster than most; if not all, present protocols that do not require each party 

14 to share identical encryption/decryption keys. 

15 . ..... " ^ •.. . : V"' V - : .., . • ' ' ; ** 

16 Briefly, for two parties desiring the private communication of a plaintext message (P) - 

17 the first, transmitting party (T) and the second, receiving party (R) - three encrypted 

18 messages (Ci, C2, arid C3) are created and communicated between the parties to generate 

19 the fully secure transmission of the initial message P. 

- 20 " * ... • • / ; ' • ; ■: ; • ' - : 

21 The first party T chooses two distinct transformation processes (a and (3) and key ; 

22 elements for those processes with characteristics such that the plaintext message P^may 

23 be embodied in the output of the transformation process a, the transformation process p 

24 can be readily reversed, and the composite transformation of the operation of the 

25 transformation process p on the output of the process a embodying message P cannot be 

26 reversed. The first encrypted message Ci is created as the output of the operation of the 

27 transformation process p on the output of the process a embodying P and is transmitted 

28 by the first party T over a non-secure channel to the second party R. 

29. The steps taken by the first party T in creating the first encrypted message C\ are 

30 represented as follows: 

31 " ■ ; . ; - , ■ • ; ' ■ ■ 

32 a(P) l The result of the transformation a embodies P 

33 p' exists The transformation p can be reversed where P' 

34 represents the reverse transformation of p 

35 P(a(P))' does not exist The composite process of the transformation p 

36 acted on the transformation a can not be reversed 

37 1 Ci <= P(a (P)) : The encrypted message C] is assigned the 

38 composite result of the transformation p acted 

39 on the transformation a 
40 

41 Reversal of a transformation is taken to mean that given the specific characteristics of the 

42 transformation and a specific output of that transformation, the corresponding inputs to 

43 the transformation can be derived. Transformations that cannot be reversed are those for 

44 which even when given the specific characteristics of the transformation and a specific 

45 output of that transformation, the corresponding inputs to the transformation cannot be 

46 derived. For the purpose of the invention, transformations may include but are not 



1 limited to mathematical functions and their equivalents. For transformations consisting 

2 of mathematical functions, the process of reversing the transformations is known as 

3 inverting the functions. In general, the transformations referenced herein may exhibit a 

4 more limited or more expansive set of properties than those distinctly attributed to 

5 mathematical functions. 

6 • . : ;■' ; .. • ■ .. . • 

7 Upon receipt of the first encrypted message Ci, the second party R chooses a distinct 

8 transformation processes (y) and key elements for that process with characteristics such 

9 that the transformation process y can be readily reversed and the composite 
10 transformation of the operation of the transformation process y on the received encrypted 



11 message C] cannot be reversed. The second encrypted message C2 is created as the 

12 output of the operation of the transformation process y on the received encrypted message 

13 d and is transmitted by the second party R over a non-secure channel back to the first 

14 party T. The steps taken by the second party R in creating the second encrypted message 

15 C2 are represented as follows: - 

16 .' .-. / ' - ' - . ; ;'■ : " . . ' ■ ... ' " 

' 17 ■ • v; -vv .., \'- k • " • : .. ; ■ > : . ■ 

18 y ? exists The transformation y can be reversed where y' 

19 ; represents the reverse transformation of y 

20 y (Ci)' does not exist The cpmposite result of the transformation y 

21 v acted on the first encrypted message C i 

22 _ ; cannot be reversed 

23 C2 <= y (Cij • The encrypted message C2 is assigned the 

24 , • < composite result of the transformation y acted 

25 on the first encrypted message Ci 



27 "•■ . .. :yy-y -'\ . • . ' : • ; 

28 1 Upon receipt of the second encrypted message C2, the first party T reverses the second of 

29 the first two transformation processes p using the reversal process that is known to exist 

30 according to the initial choice of that transformation. The third and final encrypted 

31 message C 3 is created as the output of the operation of the ;reverse transformation process 

32 P' on the received encrypted message C2 and is transmitted by the first party T over a 

33 non-secure channel back to the second party R. The steps taken by the first party T in 

34 creating the third encrypted message C3 are represented as follows: 

■ 35' ■ ' ■;" ' . - V . ' : - ' V : 



37 C3 c= p' (C2) The encrypted message C3 is assigned the 

38 composite result of the reverse transformation 

39 P' acted on the second encrypted message C2 
. 40 • ,: - \ . ' \ " . 

41 Following the reversal transformation P', the third encrypted message C3 represents the 

42 composite output of the operation of the transformation process y on the output of the 

43 process a embodying message P. 



44 
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1 A key characteristic of the transformation processes P and y for the protocol is the 

2 requirement of viable reverse transformations that are independent of the order of the 

3 reversal operations. That is, the composite result of the second encrypted message C 2 is 

4 the culmination of all three transformation processes a, p, and y, and it must be the case 

5 that the transformations p and y can be reversed and applied to C 2 - in any order - to 

6 yield the sole result of the first transformation a alone. For mathematical functions, this 

7 condition is essentially equivalent to the commutative property. This key characteristic 

8 allows the operation of p on a in creating C\ to be reversed as p' in the creation of C3 

9 even though the intervening transformation of y has been applied. The invention 

10 identifies and applies transformations that make such order-independent reversal 

11 possible. 

12 ' 

13 Another constraint of the choice of the transformation process y is that the composite 

14 transformation that is the result of the operation of the transformation process y remaining 

1 5 in the output C3 after the reversal of p has been applied to C 2 cannot be reversed. 

16 ; ' " \ . • ■ 

17 Upon receipt of the third encrypted message C3, the second party R reverses the 

18 transformation processes y using the reversal process that is known to exist according to 

19 the initial choice of that transformation. Following that reverse transformation, the result 

20 is simply the output of the process a embodying message P. That is, 

21 . • - ... 1 ' ' ■ "■' 

22 a(P)<=y'(C 3 ), 

23 ; : : ; , 

24 except that this copy of a (P) is now in the possession of the second party R rather than in 

25 that of the initial party T. The second party R removes the plaintext message P from its 

26 embodiment in the output of the transformation process a to yield possession of the 

27 original message created by T. The invention identifies and applies means of embodying 

28 the message P in the output of transformation process a in a manner such that the second 

29 party R can remove the message P from that embodiment. 

31 The processes of the invention are distinctly different from previous implementations of 

32 three-pass protocols that used complex, public-key- like computational methods to 

33 implement the encryption components of each pass. The processes of the invention are 

34 straightforward transformation methods that are fully secure and yet computationally 

35 efficient. Because the invention doesn't require either party to possess or gain any 

36 information about the other's primary encryption process, the technique of the invention 

37 is designated as an independent-key process. 
38 

39 An advantage of the present invention is that it is technically impossible for an 

40 eavesdropper, even knowing the transmitted quantities Ci, C2, and C3 and the general 

41 properties and processes of the transformations a, p, and y, to directly determine the 

42 plaintext message P because no reverse transformations can be applied to the transmitted 

43 quantities to make that determination. 
44 

45 
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1 BRIEF DESCRIPTION OF THE DRAWINGS 

2 .. . . • . 

3 Figure 1 is a block diagram depicting a cryptographic system that may be employed for 

4 fully secure transmission of a message over non-secure channels without the prior 

5 exchange of cryptographic keys, according to the invention claimed herein. 

6 ■ ~ ' ■ 1 ^ ^ . . ' ■'■ . ^ -' • . " .-■ 

7 Figure 2 is a block diagram depicting a general example of a possible embodiment of 

8 such a cryptographic system that may be employed for fully secure transmission of a 

9 message over non-secure channels without the prior exchange of cryptographic keys, 
10 according to the invention claimed herein. 

11 

12 Figure 3 is a block diagram depicting a specific example of a possible embodiment of 

13 such a cryptographic system that may be employed for fully secure transmission of a 

14 message over non-secure channels without the prior exchange of cryptographic keys, 

15 according to the invention claimed herein. 

16 ' ■ * ' 

17 , • . [ . ' ,'• ' 

18 DESCRIPTION OF THE PREFERRED EMBODIMENT 

19 ; . ■ : V . : ' 

. 20 Referring to FIG. 1, a cryptographic system is shown in which all communication takes 

21 place over a non-secure channel 21. The non-secure channel 2 T may include a telephone 

22 line, a radio connection, a cellular telephone connection, a fiber optic line, a microwave 

23 ; v \ connection, a coaxial line, an infrared optical link, or any other communication 

24 technology that permits the transmission of information from a first location to a second 

25 location. Two-way communication is exchanged on the non-secure channel 21 between 

26 the initial cpnverser 1 1 referred to as the transmitting party T and the second converser 

27 3 1 referred to as the receiving party R using transceivers 22 and 23, for example digital 

28 cellular telephones, modems, or any other mechanism for converting information into the 

29 structure necessary for transmission by the non-secure channel 21. The transmitting 

30 party 11 possesses a plaintext message P 10 to be communicated to the receiving party 

31 31 ■ 

32 . ■ • 

33 Both the transmitting party T 1 1 and the receiving party R 3 1 use cryptographic devices 

34 12 and 32 respectively, for encrypting and decrypting information under the action of the 

35 processes of this invention. Each cryptographic device 12 and 32 receives the output of 

36 transformation generators 13 and 33 respectively. The first transformation generator 13 

37 creates the transformations a 14, p 15 and P' 16 which are provided to the cryptographic 

38 device 12. The transformation (V 16 is the reverse transformation or inversion of process 

39 p 15. The second transformation generator 33 creates the transformations y 34 and y' 35 

40 which are provided to the cryptographic device 32. The transformation y* 35 is the 

41 reverse transformation of y 34. 
42 

43 The transmitting party T's 1 1 cryptographic device 12 encrypts the plaintext message P10 

44 into the first cryptographic message C i 24 by transforming message P 1 0 through the 

45 transformations a 14 and p 15 so that no reverse transformation is possible for the 

46 resulting. output Ci 24. The first cryptographic message C| 24 is then transmitted through 
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1 the first transceiver 22, over the non-secure channel 2 1 , and through the second 

2 transceiver 23 to the receiving party R 31. 

3 ' ; : ' 

4 The receiving party R's 31 cryptographic device 32 further encrypts the received first 

5 cryptographic message G| 24 into the second cryptographic message C 2 25 by 

6 transforming d 24 through the transformation y 34 so that no reverse transformation is 

7 possible for the resulting output C 2 25 . The second cryptographic message C2 25 is then 

8 . transmitted through the second transceiver 23, back over the non-secure channel 21, and 

9 through the first transceiver 22 to the transmitting party TIL 

10 • ' . .. . • ; 

11 The transmitting party T ? s 11 cryptographic device 12 partially decrypts the received 

12 second cryptographic message C2 25 into the third cryptographic message C3 26 by 

13 transforming C2 25 through the reverse transformation p' 16 so that no reverse 

14 transformation is possible for the resulting output C 3 26. The third cryptographic 

15 message C 3 26 is then transmitted through the first transceiver 22, over the non-secure 

1 6 channel 2 1 , and through the second transceiver 23 to the receiving party R 31. 

17 . . ■ . ' - . 

18 The receiving party R's 31 cryptographic device 32 device further decrypts the received 

19 third cryptographic message C3 26 by transforming C3 26 through the reverse 

20 transformation y' 35. The result now in the possession of the receiving party R 31 is the 

21 output of the process a 1 4 embodying P 10. The receiving party R 3 1 removes the 

22 plaintext message P 10 from its embodiment in the output of the transformation process a 

23 14 to yield possession of the original message created by Til. The receiving party R 3 1 

24 does not know nor need to know the transmitting party T's 1 1 transformation process p 

25 15 nor does the transmitting party T 11 know nor need to know the receiving party R's 31 

26 transformation process y 34. Both T 1 1 and R 3 1 know and utilize the transformation 

27 process a 14, but a 14 can be publicly known or transmitted from Til to R 31 without 

28 fear of interception, since the message P 10 cannot be decoded by an eavesdropper 41 

29 who knows only transformation process a 14. Because the invention doesn't require 

30 either party to possess or gain any information about the other's primary encryption 
.31 processes, the technique of the invention is designated as an independent-key process. 

32 . ; ' ^ .,. "'• • ~ : ■ . 

33 The cryptographic system of the invention includes a non-secure communications 

34 channel 21 , making it possible for an eavesdropper 41 that is not included in the 

35 cryptographic system to receive all of the communications between the transmitting party 

36 Til and the receiving party R 31. The eavesdropper 41 may possess a cryptographic 

37 device 42 that includes the same processing capabilities and knowledge of the 

38 transformation processes as the cryptographic devices 12 and 32 available to the 

39 transmitting party Til and the receiving party R 31, and a transformation generator 43 

40 that includes the same capabilities and available transformation processes as the 

41 transformation generators 13 and 33 available to the transmitting party T 1 1 and the 

42 receiving party R 3 1 . However, even given the full content of the encrypted messages Ci 

43 24, Ci 25, and C3 26, the eavesdropper 41 cannot directly determine or otherwise deduce 

44 the transformations a 14, p 15, or y 34 to determine the original plaintext message P 10. 

45 The best that the eavesdropper 41 can do with the information from the messages Ci 24, 

46 C2 25, and C 3 26 is to establish some limited relationships between some of the 
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1, components of the messages. However, knowledge of those relationships alone is not 

2 very informative or substantially useful to the eavesdropper 41 since the eavesdropper 41 

3 would still have to guess the values of many specific components of the transformations. 

4 Refining that relationship information would require an amount of effort by the 

5 eavesdropper 41 no less than that required for a brute-force break of the cryptographic 

6 system. Therefore, the cryptographic system is fully secure, being no more susceptible to 

7 cryptanalytic attack than to a brute-force attack 
8 

9 As merely a general example of a possible embodiment of the processes of this invention, 

1 0 the basic techniques of matrix algebra may be applied to create transformations that 

1 1 satisfy the requirements of the invention. This example is demonstrated in FIG. 2. As 

12 shown in FIG. 2, the transmitting party T 1 1 has a plaintext message P 10 to be 

13 transmitted over a non-secure channel 21 to the receiving party R 3 1 . The transmitting 

14 party T 11 uses a transformation generator 13 to generate two transformations a 14 and p 

15 15 such that p 15 can be reversed, but the combined transformation (a 14) (P 15) cannot 

16 be reversed. The transformation a 14 for this example is the creation of a singular (i.e., 

17 non-invertible) matrix [A] 14 where the plaintext message P 10 is embodied in the upper 

18 left block of the matrix and the remaining three blocks of the matrix are established by 

19 the transformation process to be random or quasi-random elements which exhibit 

20 characteristics such that the matrix [A] 14 cannot be inverted. The second transformation 

21 p 15 is taken to be that of post-multiplying the matrix [A] 1 4 by an invertible matrix [B] 

22 15 composed of random or quasi-random elements to create the first encrypted message 

23 [AB] 24. The first encrypted message [AB] 24 which is created by the cryptographic 

24 device 12 is singular or non-invertible because one of its key components - [A] 14 

25 (which embodies P 10)— is singular. The transmitting party T 11 transmits the matrix of 

26 elements in [AB] 24 to the receiving party R 31 over a non-secure channel 21. Upon 

27 receipt of [AB] 24, the receiving party R 3 1 uses the transformation generator 33 to 

28 generate the transformation y 34 such that y 34 can be reversed. For this example, the 

29 transformation y 34 is taken to be the process of pre-multiplying the matrix [AB] 24 by 

30 an invertible matrix [C] 34 composed of random or quasi-random elements. Once the 

31 cryptographic device 32 is used to apply the transformation y 34 to matrix [AB] 24, the 

32 resulting second encrypted message [CAB] 25 is also singular or non-invertible because 

33 [A] 14, a key component of that result, is singular. The receiving party R 31 transmits 

34 the matrix of elements in [CAB] 25 to the transmitting party Til over a non-secure 

35 channel 21. Upon receipt of [CAB] 25, the transmitting party T further transforms 

36 [CAB] 25 by post-multiplying the matrix [CAB] 25 by the inverse of the matrix [B] 15, 

37 which is [B]' 1 16. That post-multiplication effectively reverses the transformation P that 

38 was the process of post-multiplying [A] 14 by [B] 15. The resulting third encrypted 

39 message [CA] 26 is also singular or non-invertible because [A] 14 is still a component of 

40 the result and is singular. The transmitting party T 1 1 transmits the matrix of elements in 

41 [CA] 26 to the receiving party R 3 1 over a non-secure channel 21 . Upon receipt of [CA] 

42 26, the receiving party R 31 further transforms [CA] 26 by pre-multiplying the matrix 

43 [CA] 26 by the inverse of the matrix [C] 34, which is [C]' 1 35. That pre-multiplication 

44 effectively reverses the transformation y 34 that was the process of pre-multiplying [AB] 

45 24 by [C] 34. The final result of these combined transformations (implemented in this 

46 example as matrix multiplications) is the matrix [A] 14, which embodies the plaintext 
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1 message P 1 0 in its upper left biock. That result is now in the possession of the receiving 

2 party R 31. The receiving party R 3 1 does not know nor need to know the transmitting 

3 party T's 1 1 transformation matrix [B] 1 5 nor does the transmitting party T IT know nor 

4 need to know the receiving party R's 31 transformation matrix [C] 34. Because the 

5 invention doesn't require either party to possess or gain any information about the other's 

6 primary encryption processes, the technique of the invention is designated as an 

7 independent-key process. 

8 '. • ' ■ /. V ^ : ' , 

9 A specific example of an embodiment of the processes of this invention using the basic 

10 techniques of matrix algebra is shown in FIG. 3. As shown in FIG. 3, the transmitting 

11 party T 11 has a plaintext message P 10 of the phrase "HI" to be transmitted over a non- 
12 secure channel 21 to the receiving party R 31. The phrase "HI" is converted to a numeric 

13 equivalent of "8, 9" using the conversion of *W' tp."l" "B" to "2", etc. Other numeric 

14 conversions of characters, such as for the standard ASCII character set, could be used. 

15 The transmitting party T 1 1 generates two transformations a 1 4 and p 15 such that (3 15 

16 can be reversed, but the combined transformation (a 14) (P 1 5) cannot be reversed.; The 

17 transformation a 14 for this example is taken to be the creation of a singular (i.e., non^ 

18 invertible) matrix [A] 14 where the plaintext message P 10 is embodied in the upper left 

19 area of the matrix and the remaining elements of the matrix are established by the 

20 . transformation process to be random or quasi-random elements which exhibit 

21 characteristics such that the matrix [A] 14 cannot be inverted. The numeric equivalent 

22 "8, 9" of the message "HI" is loaded in the upper left block of [A] 14 and the remaining 

23 elements are chosen for this example to be "7, 5, 6, 3, 1, 0, 5" so that [A] 14 is non- 
24 invertible. Thus, the transformation a 14 in this example converts the message "HI" to 

25 the non-invertible matrix [A] 14. The second transformation P 15 is taken to be that of 

26 post-multiplying the matrix [A] 14 by an invertible matrix [B] 1 5 composed of random or 

27 quasi-random elements to create the first encrypted message [AB] 24. The matrix [B] 15 

28 is chosen for this example to contain the elements "3, 4, 6, 2, 1,1,5, 8, 4" so the 

29 transformation p 15 yields the resulting elements of [AB] 24 as "77, 97, 85, 42, 50, 48, 

30 28, 44, 26". This first encrypted message [AB] 24 is singular or non- invertible. The 

31 transmitting party T 11 transmits the matrix of elements in [AB] 24 to the receiving party 

32 R 31 over a non-secure channel 21. Upon receipt of [AB] 24, the receiving party R 31 

33 generates the transformation y 34 such that y 34 can be reversed.. For this example, the 

34 transformation y 34 is taken to be the process of pre-multiplying the matrix [AB] 24 by 

35 an invertible matrix [C] 34 composed of random or quasi-random elements. The matrix 

36 [C] 34 is chosen for this example to contain the elements "5, 7,1, 2, 3, 6, 4, 9, 0" so the 

37 transformation y 34 yields the resulting elements of [CAB] 25 as "707, 879, 787, 448, 

38 608, 470, 686, 838, 772". The resulting second encrypted message [CAB] 25 also is 

39 singular. The receiving party R 31 transmits the matrix of elements in [CAB] 25 to the 

40 transmitting party T 1 1 over a non-secure channel 21. Upon receipt of [CAB] 25, the 

41 transmitting party T further transforms [CAB] 25 by post-multiplying the matrix [CAB] 

42 25 by the inverse of the matrix [B] 15, which is [B]" 1 16. That post-multiplication 

43 effectively reverses the transformation p that was the process of post-multiplying [A] 14 

44 by [B] 15. The resulting third encrypted message [CA] 26 contains the elements "76, 87, 

45 61, 37, 36, 53, 77, 90, 55" and also is singular or non-invertible because [A] 14 is still a 

46 component of the result and is singular. The transmitting party Til transmits the matrix 



1 of elements in [CA] 26 to the receiving party R 31 over a non-secure channel 21. Upon 

2 receipt of [CA] 26, the receiving party R 31 further transforms [CA] 26 by pre- 

3 multiplying the matrix [CA] 26 by the inverse of the matrix [C] 34, which is [C]"! 35. 

4 That pre-multiplication effectively reverses the transformation y 34 that was the process 

5 of pre-multiplying [ AB] 24 by [C] 34. The final result of these combined transformations 

6 (implemented in this example as matrix multiplication) is the original matrix [A] 14 with 

7 the elements "8y 9, 7, 5, 6, 3, 1, 0, 5", which embodies the plaintext message P 10 entered 

8 as "8, 9" in its upper left block. That result is now in the possession of the recei ving 

9 party R 31. The receiving party R 31 does not know nor need to know the transmitting * 
10 party T's 11 transformation matrix [B] 15 nor does the transmitting party T 11 know nor 
IT need to know the receiving party R's 31 transformation matrix [C] 34 in order for the 

12 plaintext message P 10 to be securely transmitted between the two. 

13 '. " ^ ■ ;': r r;; f ;:-/'/'' / : ■ : . ■ ; ■/ ' • 

14 The elements of the transformation matrices [B] 15 and [C] 34 and the non-message 

15 elements of the matrix [A] 14 can be considered "key" elements and in conjunction with 

16 the transformation processes could be labeled the "keys" to the cryptographic system of, 

17 this invention. ; ' ; - " 

18 . ' ■ v ■ v ' \ " ■ <;\[ -\- . ' . ' ; ' • ; /. •' - t •. ' 

19 . Because the cryptographic system of the invention includes a non-secure communications 

20 channel 21, an eavesdropper 41 that is not included in the cryptographic system may 

21 receive all of the communications between the transmitting party T 1 l and the receiving 

22 party R 31. The eavesdropper 4 1 may possess a cryptographic device 42 that includes the 

23 same processing capabilities (matrix multiplication in the case of this example) and 

24 knowledge of the transformation processes (matrix operations in the case of this example) 

25 as the cryptographic devices 12 and 32 available to the transmitting party Til and the 

26 receiving party R 31 , and a transformation generator 43 that includes the same 

27 capabilities and available transformation processes (matrix operations in the case of this 

28 example) as the transformation generators 13. and 33 available to the transmitting party T 

29 1 1 and the receiving party R 31. However, even given the full content of the encrypted 

30 messages [AB] 24, [CAB] 25, and [CA] 26, the eavesdropper 41 cannot directly 

31 determine or otherwise deduce the matrices [A] 1 4, [B] 1 5, or, [C] 34 to determine the 

32 original plaintext message P 10 because the observed matrices [AB] 24, [CAB] 25, and 

33 [CA] 26 are not invertible. The best that the eavesdropper 41 can do with the information 

34 from the messages [AB] 24, [CAB] 25, and [C A] 26 is to establish some limited linear 

35 relationships between some of the elements of the message matrices. However, 

36 knowledge of those linear relationships alone is not very informative or substantially 

37 useful to the eavesdropper 41 since the eavesdropper 41 would still have to guess the 

38 values of many specific elements in the matrices. Refining that linear relationship 

39 information would require an amount of effort by the eavesdropper 41 no less than that 

40 required for a brute- force break of the cryptographic system. Therefore, the 

41 cryptographic system is fully secure, being no more susceptible to cryptanalytic attack 

42 than to a brute- force attack. 

43 ' ■ ; :/ • . ; , : ■ ... ; 

44 The precise encrypted messages transmitted 24, 25, 26 between transmitting party Til 

45 and the receiving party R 3 1 depend on the plaintext message P 10 and the transformation 

46 processes 14, 15, 34. The options for choices of the transformation processes 14, 15, 34 
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1 make possible nearly any observable combination of encrypted messages 24, 25, 26 

2 regardless of the initial plaintext message P 10. The magnitude of the alternatives for 

3 observable combinations of encrypted messages is so large as to frustrate any attempt by 

4 an eavesdropper 41 to develop cryptanalytic approaches to attack the cryptographic 

5 system. 

. 6 " . / . 

7 Although the present invention has been described in terms of the presently preferred 

8 embodiment, it is to be understood that such disclosure is purely illustrative and is not to 

9 be interpreted as limiting. Consequently, without departing from the spirit and scope of 

1 0 the invention, various alterations, modifications, and/or alternative applications of the 

1 1 invention will, no doubt, be suggested to those skilled in the art after having read the 

12, preceding disclosure. Accordingly, it is intended that the following claims be interpreted 

13 as encompassing all alterations, modifications, or alternative applications as fall within 

14 the true spirit and scope of the invention. 

15 J " . : 
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